Adding login_hint in SAML request

selvakumar-invicara · February 8, 2022, 12:50pm

Im using keycloak as saml idp and my Spring Boot application as Service provider.

I would like pass login_hint in query parameter for saml request. I understand that it works for open-id-connect. But it doesn’t work for saml request.

Please help

xgp · February 8, 2022, 5:14pm

You can use the <saml:Subject> field in the AuthnRequest message.

selvakumar-invicara · February 10, 2022, 11:10am

Thank you very much, It works

Cyben · February 11, 2022, 7:19pm

There is another solution for that.

Look at:

And from my experience it works, but I haven’t tested it on newer versions of Keycloak.

selvakumar-invicara · February 15, 2022, 10:11am

@xgp Is it possible to render sign up page instead of login page. The flow works like this,

End user lands on Service provider
It renders a page to user to enter the email
Redirect to keycloak upon submitting
Keycloak renders login page

At fourth step, Is it possible to control to render registration page instead of login page?

Topic		Replies	Views
Using kc_idp_hint to skip default idp with SAML? Getting advice	6	6090	February 26, 2021
Kc_idp_hint for SAML Client Getting advice	1	707	October 31, 2022
Keycloak as SP for SAML IDP Configuring the server saml	12	17297	November 14, 2021
Skip IDP redirector / saml-post-form.ftl page Getting advice	5	1111	January 23, 2023
IdP Initiated Login: support redirect to an URL provided by an external IdP Getting advice identity-brokering , saml	0	435	December 6, 2023

Adding login_hint in SAML request

Related Topics